Actions
Fix #51346
openrgw/sts: Correct/improve/add thumbprint validation for incoming JWT from an oidc provider
Status:
New
Priority:
Normal
Assignee:
-
Target version:
-
% Done:
0%
Source:
Tags:
Backport:
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
Implement thumbprint evaluation for JWT using jwks_uri.
Also implement the validation of each certificate in the certificate chain in x5c field of of the JSON Web Keys based on RFC # 7515 and RFC # 5280.
Also correct anything that is wrongly implemented now.
Updated by Casey Bodley over 2 years ago
- Related to Bug #51018: improve JWT token validation in accordance with JSON Web Key Set added
Actions